Threat actors pose as pharmacists, get business associates to send them patient records

Harbor Health in Massachusetts has notified at least one patient whose data was compromised by an attack on ScansStat Technologies. According to a December 13 letter from Jesse A. Shipley, HHSI’s Director of Compliance & Risk Management, on N… Continue reading Threat actors pose as pharmacists, get business associates to send them patient records

Oregon anesthesiology group notifies 750,000 about ransomware incident; FBI seized threat actors’ account with their files

Like many other healthcare entities, Oregon Anesthesiology Group, P.C. (OAG) became the victim of a ransomware attack this year. But somewhat atypically, the FBI seems to have seized a threat actor’s account that had their patient data. According… Continue reading Oregon anesthesiology group notifies 750,000 about ransomware incident; FBI seized threat actors’ account with their files

Optometry services provider and specialty pharmacy services both report breaches

As many people left for the weekend or were thinking about holiday shopping, two more HIPAA-covered entities disclosed breaches involving protected health information (PHI):  optometry services provider Simon Eye Management and specialty pharmacy servi… Continue reading Optometry services provider and specialty pharmacy services both report breaches

Quest’s ReproSource faces patient lawsuit over data breach impacting 350K patients

Jessica Davis reports: One month after notifying 350,000 patients of a potential theft of their protected health information, ReproSource Fertility Diagnostics has been sued by a patient over alleged security failings. ReproSource is a clinical laborat… Continue reading Quest’s ReproSource faces patient lawsuit over data breach impacting 350K patients

DNA Diagnostics Center notifying more than 2 million people who used a national genetic testing service

People who had their personal information collected by a national genetic testing organization between 2004 and 2012 may have never known that their information was acquired by DNA Diagnostics Center (DDC) in Ohio in 2012. They may find out now, though… Continue reading DNA Diagnostics Center notifying more than 2 million people who used a national genetic testing service

Yanluowang ransomware operation matures with experienced affiliates

Ionut Ilascu reports: An affiliate of the recently discovered Yanluowang ransomware operation is focusing its attacks on U.S. organizations in the financial sector using BazarLoader malware in the reconnaissance stage. Based on observed tactics, techni… Continue reading Yanluowang ransomware operation matures with experienced affiliates